Unique traffic filtering to prevent endpoint compromise, data leaks & more
Thor Foresight offers real-time threat and status reporting, delivered in intervals of your choosing. Data is graphed and scaled daily, weekly or monthly for an easy overview and can be integrated into SIEM via API.
Thor Foresight helps you perform:
Next Generation malware prevention and detection
Quick response and Forensics on malware infections
Data leakage prevention
Malicious traffic tracking and risk prevention
Vulnerability management and compliance (GDPR)
Lifetime history storage for auditing and compliance
Allows you to define policies for Traffic scanning, malware detection, patching and installation for different segments of your Thor Foresight environment.
This gives you the option to segment your entire IT environment and create policies which apply to your exact needs across the Active Directory groups of your organisations. Heimdal policies can be made both one to one and one too many.
Combat evolving threats - add EDR to your existing AV solution
The Security Suite consists of 3 key layers:
Unique 2-Way Traffic Scanning Engine
DarkLayer GUARD™ detects and blocks network communication to mitigate Zero Hour exploits, Ransomware C&C’s, next-gen attacks and data leakages on DNS, HTTPS and HTTP layers. The scanning engine supports fully customizable white/black listing.
The Heimdal filter receives more than 800,000 new weekly updates to keep up with cyber criminals’ threats. A filter update is provided every 2 hours.
Tracking device-to-infrastructure communication
The VectorN Detection engine detects and mitigates 2nd generation malware strains, regardless of the attack vector.
Using Machine Learning Detection, Indicators of compromise/attack and Network forensics to analyse all HTTP, HTTPS and DNS traffic.
Install and Patch Engine
The X-Ploit Resilience module stops vulnerabilities in software which aren’t up to date and haven’t had the latest patches installed – these vulnerabilities are exploited in 65% of attacks. X-Ploit Resilience automatically installs and patches critical applications silently, with zero setup and without user interruption.